Bug 30851 - kdiskmark new security issue CVE-2022-40673
Summary: kdiskmark new security issue CVE-2022-40673
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal major
Target Milestone: ---
Assignee: Jani Välimaa
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-09-14 22:42 CEST by David Walser
Modified: 2023-03-13 16:17 CET (History)
1 user (show)

See Also:
Source RPM: kdiskmark-3.0.0-1.mga9.src.rpm
CVE:
Status comment: Fixed upstream in 3.1.0

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2022-09-14 22:42:47 CEST 
A security issue fixed upstream in kdiskmark has been announced today (September 14):
https://www.openwall.com/lists/oss-security/2022/09/14/1

The issue is fixed upstream in 3.1.0.
David Walser 2022-09-14 22:42:57 CEST

Status comment: (none) => Fixed upstream in 3.1.0

Comment 1 David Walser 2022-09-16 19:16:18 CEST 
Fedora has issued an advisory for this today (September 16):
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/YYO3GWTNPHNCLHSI562Q3KX43PW7FQ4Q/

Severity: normal => major

Comment 2 Nicolas Salguero 2023-03-13 15:20:27 CET 
Hi,

For Cauldron, kdiskmark-3.1.2-1.mga9 should solve that issue.

Best regards,

Nico.

CC: (none) => nicolas.salguero

Comment 3 David Walser 2023-03-13 16:17:18 CET 
Thanks.

Resolution: (none) => FIXED
Status: NEW => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.